GDPR Compliance
Your data rights under GDPR
Last updated: December 2024
Your Rights Under GDPR
If you are in the EU, you have the following rights: • Right to access your personal data • Right to rectification of inaccurate data • Right to erasure ('right to be forgotten') • Right to restrict processing • Right to data portability • Right to object to processing • Rights related to automated decision-making
Legal Basis for Processing
We process your data based on: • Legitimate interest (service provision and improvement) • Consent (where explicitly provided) • Contractual necessity (service delivery) Processing is minimal and limited to service functionality.
Data We Process
Under GDPR, we process: • Images (temporarily during processing only) • Technical data (IP address, browser info) • Usage analytics (anonymized) We do NOT process: • Personal identification data • Sensitive personal data • Data of children under 16
Data Retention
We retain data for minimal periods: • Images: Deleted within 24 hours • Technical logs: 30 days maximum • Analytics data: Anonymized and aggregated No personal data is retained longer than necessary.
International Transfers
Data may be processed in: • EU servers (primary) • US servers with adequate safeguards • All transfers comply with GDPR requirements • Standard contractual clauses are used where applicable
Exercising Your Rights
To exercise your GDPR rights: • Email: rocket.ai.cn@gmail.com • We will respond within 30 days • Identity verification may be required • No fee for reasonable requests
Data Protection Officer
For data protection matters: • Email: rocket.ai.cn@gmail.com • You have the right to lodge a complaint with your local supervisory authority